Analysis Overview
SHA256
3ee08a6330d7e23ec5de257dc92de2a9bfa431527ff3c4ee8ec132bbe183a474
Threat Level: Likely malicious
The file b5cc3358aa306721d31ab014314ae810_JaffaCakes118 was found to be: Likely malicious.
Malicious Activity Summary
Checks if the Android device is rooted.
Reads the content of the call log.
Queries information about running processes on the device
Declares broadcast receivers with permission to handle system events
Declares services with permission to bind to the system
Requests dangerous framework permissions
Queries information about active data network
Tries to add a device administrator.
Queries the unique device ID (IMEI, MEID, IMSI)
Queries information about the current Wi-Fi connection
Changes the wallpaper (common with ransomware activity)
Uses Crypto APIs (Might try to encrypt user data)
Registers a broadcast receiver at runtime (usually for listening for system events)
Checks memory information
Checks CPU information
MITRE ATT&CK Matrix
Analysis: static1
Detonation Overview
Reported
2024-06-16 23:43
Signatures
Declares broadcast receivers with permission to handle system events
| Description | Indicator | Process | Target |
| Required by device admin receivers to bind with the system. Allows apps to manage device administration features. | android.permission.BIND_DEVICE_ADMIN | N/A | N/A |
Declares services with permission to bind to the system
| Description | Indicator | Process | Target |
| Required by accessibility services to bind with the system. Allows apps to access accessibility features. | android.permission.BIND_ACCESSIBILITY_SERVICE | N/A | N/A |
| Required by accessibility services to bind with the system. Allows apps to access accessibility features. | android.permission.BIND_ACCESSIBILITY_SERVICE | N/A | N/A |
| Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. | android.permission.BIND_NOTIFICATION_LISTENER_SERVICE | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an application to read from external storage. | android.permission.READ_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an app to access precise location. | android.permission.ACCESS_FINE_LOCATION | N/A | N/A |
| Allows an application to read the user's contacts data. | android.permission.READ_CONTACTS | N/A | N/A |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
| Allows an application to read SMS messages. | android.permission.READ_SMS | N/A | N/A |
| Allows an application to read the user's call log. | android.permission.READ_CALL_LOG | N/A | N/A |
| Allows an application to write and read the user's call log data. | android.permission.WRITE_CALL_LOG | N/A | N/A |
| Allows an application to read or write the system settings. | android.permission.WRITE_SETTINGS | N/A | N/A |
| Allows access to the list of accounts in the Accounts Service. | android.permission.GET_ACCOUNTS | N/A | N/A |
| Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. | android.permission.SYSTEM_ALERT_WINDOW | N/A | N/A |
| Allows an application to record audio. | android.permission.RECORD_AUDIO | N/A | N/A |
| Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. | android.permission.SYSTEM_ALERT_WINDOW | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to read or write the system settings. | android.permission.WRITE_SETTINGS | N/A | N/A |
| Allows an application to collect component usage statistics. | android.permission.PACKAGE_USAGE_STATS | N/A | N/A |
| Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. | android.permission.PROCESS_OUTGOING_CALLS | N/A | N/A |
| Required to be able to access the camera device. | android.permission.CAMERA | N/A | N/A |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x86-arm-20240611.1-en
Max time kernel
170s
Max time network
141s
Command Line
Signatures
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.tencent.qlauncher.theme763
/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
/system/bin/cat /proc/cpuinfo
/system/bin/cat /proc/cpuinfo
/system/bin/sh -c getprop ro.build.fingerprint
getprop ro.build.fingerprint
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.180.14:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | monitor.uu.qq.com | udp |
| US | 1.1.1.1:53 | strategy.beacon.qq.com | udp |
| HK | 43.135.106.212:80 | monitor.uu.qq.com | tcp |
| HK | 43.135.106.212:80 | monitor.uu.qq.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 216.58.212.238:443 | android.apis.google.com | tcp |
Files
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | 035a3c0c0682f7e17e85126dc7b420c5 |
| SHA1 | 6fc1c8bef072dfdda0ae0dc962c7501056544879 |
| SHA256 | 0c383585939550fd452f411c7d110a5df1f759354be45f5720e8a6825f64cbf6 |
| SHA512 | e08cfb090e067cca5f7cb2d8f44879f8a83bc841c20a5b8b3fb91173d31e20090316aa3c1eb72251fa593749dd664bb63178715ce7783edecd9df7cd20ab49be |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db
| MD5 | f2b4b0190b9f384ca885f0c8c9b14700 |
| SHA1 | 934ff2646757b5b6e7f20f6a0aa76c7f995d9361 |
| SHA256 | 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514 |
| SHA512 | ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1 |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-shm
| MD5 | bb7df04e1b0a2570657527a7e108ae23 |
| SHA1 | 5188431849b4613152fd7bdba6a3ff0a4fd6424b |
| SHA256 | c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479 |
| SHA512 | 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012 |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-wal
| MD5 | 0e59bca574a3b011c7e4c8f05d85ef74 |
| SHA1 | daf54a563f3efdf871c2224ec79dc7e6fe7e5b9a |
| SHA256 | 46a8be22067cd14e07b1de0705ba5e03fece655192ee7dafabe75b3e0a84041f |
| SHA512 | 08bdc0d0f38bd780fd18057a18822503023541b4ef4c099b60a905c04ca8cda550fc98e66b5c72f149de60d3ecf1219533e8639178d36f6d5a19bd5146b841ff |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 04cdb237e772d64319be7301aa182bc1 |
| SHA1 | 466530c252c2b4776ff7d082bd1448caa11cd1bf |
| SHA256 | d28668d06754d57d84e62f276fa6fa48af02a694bde1533b79c0ebcfaf59abcc |
| SHA512 | e9e612cbb581f87d16b2a432a4a2fc6a11af40b8278a6dba96e74eec8490af1ab25029d5f6d2c703cc94b9d2cd48741c36e22c581ba831c603683f601a78782e |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | ea25a44c5f7c3d2763b0cec8ea033906 |
| SHA1 | d4fd1e205f7ea89a879d8ac5bd8b0251da78f8a3 |
| SHA256 | f0319d89aea03a0cc6295b5a43c784cc4f91954e141c520c2b9e8070f9171837 |
| SHA512 | 8f13640208499d841e6c0007909d2bab4f14e33ba20cc6e6440c429a7245bf352cc3fe9bd0538033668348415fbc20c9807fcee7201dba48e1070f56ab859cdd |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | db6c851fa38a8f8f74daa54ee070e910 |
| SHA1 | 5bd0947a48274ec08defae871c042c61466a385b |
| SHA256 | e819d054283baacc93e4fff28087a859b7db70307c17208d5156e21eb4f0b65b |
| SHA512 | 02af823350ad15cb1a729e4bc9bb8309fa23604e0c2d1f3c206266e69c0418fac9628b816cbeec19f18d59416d2481c38eed58c3d0c3fde8f712f9dde5401adf |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 1c886f14d639642cd056980a967b9543 |
| SHA1 | 84370ead911e8617b831035aa54dd6041a1e5895 |
| SHA256 | 72bc02a2835c813a5a56f153bcbaa10e10acac6fa2176c50ca81bdb291ab4486 |
| SHA512 | 458c689ceceae3387b00a5ad5226b548b441c0de0892d0116f23f8a75bf337078f2c8936c25ce50c096e22d3d8470f9ed12af54db5fd2396678e96647d51ba5c |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-wal
| MD5 | 1cbb5c829e391118f3005a5868f1812a |
| SHA1 | 6e1c9c8d8bdd5bfafeb52e5ae2db9a79f13d9848 |
| SHA256 | 18528b3933bf451a0bdbcf2744b6c5c4483d0151817a182324400b98012483b7 |
| SHA512 | 7c7ed2b86b50ad17925091b9215af92c5aed292105e8d41bfe1e6489dac4f84d1161987b7dd5e5efe2593d309716dad0e4d1d72de6297b9a0771ff5aedec5af2 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | d51e00b16472918f72636a88eeab1017 |
| SHA1 | a7f59a572d0214f0432f92a66a2a079c36bf1171 |
| SHA256 | d84f67a32915ce9f28145afe692e708108559fb841009fd6c170c1bac5499928 |
| SHA512 | f21fe75f3b969f8cb747f887cbb455c519638be8eb7b111d8f18f7272fc2675d2dfea342f0b58557dc23a1e7298aff0a3c3c41bdcdcef0600bd7fa2c544568c6 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | e864f53714a3b762fdb36d1836e9e8dc |
| SHA1 | d5c1ea37d0acd2241cbbfbc64f8a8c288247536f |
| SHA256 | de0d19986f7f6239887ed4bc2846eef1d397ce264cb80407bdfd6cac263c9c09 |
| SHA512 | b56ee1c12403e8133cc333fc661ecedeb2b4e2f8bf424331ff71d849bb50ee9c8c2bcb2c11db2476177e3e1007cb87b4ed8c494dacf8c79523bf7fc52c251b95 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 7aabfdc6360dc148395c13e0335032ed |
| SHA1 | 513b6fd00412d5c3ce84dec99cfee88e37f9ba5d |
| SHA256 | 36a2432da7168d642d497229c7cbc045b6143d3f40a4344c88a5d15cb3df72b6 |
| SHA512 | 2183204aaec72da3a3f8e854a214e3fb159e0a546870db38b379c3309c0ac1dc53184848fd934f9ba0e6f137e43d2f607e3f9b4923426ff25cdb3adf8151fe07 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | ab80ef7491624bc62f79fcda9feff943 |
| SHA1 | 49bbe355e914a048701882da64871473e800ad43 |
| SHA256 | ff42b55b6ec01939a1bd7055f56e9278052ccc588b08b43b2057861c4a71ace4 |
| SHA512 | 6d345aa99e5742832aa495181a4dbef90aa1ed30698e802b53f0d400d7593a5cb13ba863b341445dc65339db5792dcdae494c1041e215240bbba80c204aaf7e5 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | 2681641b65633e40794f80a236e54929 |
| SHA1 | b8d39a6369213b69a729e373a0cfbe67b5c654e0 |
| SHA256 | b3037390a5c4a652fa6a5cc9dca613819e76902fa98c99df09a5a43d9b50bbb2 |
| SHA512 | f547ee0f8e1f4797acd85ec9f299b656b44cb131b75dea7401634d3ebdc33e9cc3e758af39ec5f2776304e1e30bc550729cc73c5b64af11059fd4e39cd9bb55f |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | e09081a489ff056188d8156c9d6ee0f7 |
| SHA1 | 56fc179dcc16db1d7e22eea77f03b2d6b3232b78 |
| SHA256 | 3ee0daf05c827d0e8620c9e533b5bb819cfc409d517226b70785aaa7d4397c3f |
| SHA512 | 8390914e451aa2d24573f1e1971954458e2f1219c84d69fbf82cd61fe509219c818898e96ebcee9b599e6ccca4f3ee0bdfd2672863234d545a95c9c4bf6d24e4 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 8b7b1d42449d9104b6260f28d2b0f378 |
| SHA1 | 05938af0270cba1ded6bc0e39238bac8054fba4c |
| SHA256 | 5e6c9ebc3ce07157a460d98054b191d92597114d822e28a49b5f5a7dd57eb262 |
| SHA512 | 1ec6640606869299da66665f0c356cb957489126bda937d44bbff018fa8d4b4cc81576721192094d1dee1526684a62dc1ea8fe5d0c395b3ea7159730a32f70c8 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | 9d583d48f56c56f7b2a465dbb04ca31f |
| SHA1 | 63673ad74de43e4cc682419b27fb9ab67fd0bf90 |
| SHA256 | 25f364fdb86dfd5b8b3dffda75a056f22d4345452c256ff0ac1a6e9e8e339409 |
| SHA512 | 52e79d20973ec466ac10e0d107d9cf38104fc11a8ef6d3a2ad4b0296c39f4ac2ecaf5294ed4bde293ac4d713fcfa1c06bf95f7adce29fb94e2cb704020407a2a |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 1291a91b1eab4f20b07da28150c33fab |
| SHA1 | 345f05cc6c6b86d5ed1841ab617d3a061c22462e |
| SHA256 | 878c9a4913e77748f803c0a6aaed421a71b1e9362f0b39387cc5c78c32d532d8 |
| SHA512 | 88dd026d6d81dfa064da619c0ed376df17af3d2257180ac94b6dd6e3b280d07ec07bf73ec1dc72660f3b4309d835b22ffa19222baa8e86665f6fbeedda6bef5a |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | df1da9922f467a757a594727cd3b1c41 |
| SHA1 | 0909e808ed402eb4e36f34d456838c9c84165e92 |
| SHA256 | 5456622d427a926fb525b79ed5733a81c772b0b3671422284b16cea1d2e891ca |
| SHA512 | a1bac120e6507061b03fc27a5e60023bb280af3d2777d1b27209485387f874359301cec067b4f5341c2adbdc0d67f67e8c9a74e4fb10fb20b6b6acd7434c48cc |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | d05267d376450865f922caedaf5d4cfd |
| SHA1 | 99e65704b4b3eea5f4acd760ea75b0370048f8e0 |
| SHA256 | a22a0fa4e07f1c81389b62e7cbb0b7853c128f274a6ca9841035f6ec4ec75167 |
| SHA512 | 4eb5331885daca4048708a6d75e2f4912c1e4e1e975c5f64f2d97c3f4da9c29c5affc335d180031b94f644403107e2d9eac34a47f607f83c705e989dda1a3a20 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | a6d5380af2a600dda75f4247735b7838 |
| SHA1 | 8ca09308416ef50cfa76545b73a8d4a0d4d7039d |
| SHA256 | 9e5dc65a12dd0aeaaab77ff867a1dfb15e6276d2c4b840f35830b9a50b281eaf |
| SHA512 | 50bee1ebc6a696885de3a134321707394646e51088c1f740eb017091e717edc219f8be2e8d513d95aba8c9f8fcef160c1610cac9e7d24855f22b6e9f824af1a5 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 800649944c2a42e6ec82a4a342627f96 |
| SHA1 | a6655b36d9c7b24c0aea9a12b1bb68fea792441a |
| SHA256 | 4d273038fede535f0bd73630f20a1b3b51a1d3f74c93f2bc688d48b99543c844 |
| SHA512 | 2d39e27a67e6f3a47a1a8a269fd524e1b4ce3edfca5352bebe0a03e1fa086d4a43c52e9a61d798aa1d7dc66fbc651a1a801339914fe5d34416a129cfe6e2c5a7 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-wal
| MD5 | 119449dc580ca7b4fc74771116e467fc |
| SHA1 | 334ad6f5016def2defe58b5dc1b51d6203ae0052 |
| SHA256 | 47b83063f11dbc421e10877c2b89732b94eaff98b9c28768dc0130b6a1c8cc5e |
| SHA512 | 74fc4df98d325e5d44a18e2445206eb4ae7132336b6fd4a7b26c45472403c76ad5e0583b2e2bcf2bb22c64fef1ab1ef0d87ddbef3ebfa751332dfeb19fc7697f |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | de957925c83c672b347ab724debf7b0e |
| SHA1 | e844a834716bf61471c802be3e4ce3b12fe5ee0b |
| SHA256 | d4f5427deb31aa8b0ccf0a397547247a1c834520b7337f7e0109a68021449a9f |
| SHA512 | 23460d92cfd18eabd245aa25f3120d9067d8f0510ea8b3ef1ce46c44d00846ae6b65132a64f8d0391ab66ee9f9133b56420ed99dbc0abacb51bd26741933d4d6 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | 79c4ca785bedd7416167025e0c5c45d4 |
| SHA1 | 07fefbfdfa98b04975eee6ed4d618265dc2704fa |
| SHA256 | a9d90cb593046761fd256f8e2b5483132f9cbdd7a1e0ec1ab95ff4aa9261eafb |
| SHA512 | 9da216ad6679b7681884638ad00730d7b0604178e12e923be5bf9cf7907c168f0f6e08b5c39e9002219be8b310c93e3c69077240b94bcf356f7267a19aeb26a5 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 2dc35a4ee27225990c5d48b49c2d5418 |
| SHA1 | 841da6f4e10fedfc6c2a18fa98e57620a0873669 |
| SHA256 | 75cd23d5bae5cd87a0d4ab170d00afc4bd1a167023268e8d125598f21c28f81c |
| SHA512 | a48b8016f0f7b47e42e136c3f8138bdfcf24d06eb556968cd3cb761141b6b5b39abca99bba7248086c47ef137e215e686226cb6891fecef7b6cad2125bf3efaa |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | 1f41967a6564c117d7a736beb9d1b86a |
| SHA1 | 3ed79b8a694311ac5ca2e1ee13c4fa54309008a2 |
| SHA256 | 9b6d9d35290da9c153fac3a410bb4fc27f45fd328186a1304071ac7f3b0142c7 |
| SHA512 | 20cf99e27019f345d66408f1c2d8e956a72762a6fccd24a8514a40c3aaf4c9f1081257eda2dd97f6a5f1523908c02404a4a20382bfd0bd035c0ad003206fc93d |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | 4e509c2e05b32ac7167ca8b27933db58 |
| SHA1 | c1efcff1a7e8a22347d295d612e7e9640fc10494 |
| SHA256 | 33d72760f0ddc09818c280a7cc2be9738a215c039d0d2e874e4d13397db96d2d |
| SHA512 | 1ca861de34b701844bcaf057756edcffbc188c20f2bfb7f2ffebf62424e746e083703baf552e72177ada910198992cb24572fcb732e38d92eb63a47d9a7a49e6 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | eecc7b8c0894a12cfdd60d3906254c0d |
| SHA1 | 72d2e0f1c6fb16abd605382276d14f2d36f16f6e |
| SHA256 | f78d440c4be37749da39fcc5ca750c37ea759bcf497d95b9db42f1aa6f6ad864 |
| SHA512 | 50fe5bb70b57cf6a5cb27ca9f6db07cc0d0ea67f626d21890434b225de59ee4b5165d9d8710867e994415d8eb85fa3da0c3f55db5d2dca0757268a920751a710 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-wal
| MD5 | 3a6c54784ee2e1c6e5c2ad767d17db19 |
| SHA1 | a7cfff1edd8be7a4531749f5abe08e4a70fcd0a7 |
| SHA256 | 53266acda06efe253d793f5c0da98f780d0b7ef129427bb9b425086b014c0671 |
| SHA512 | a3e7b58ffe25e358512321286193dfba0a12f67e6e9c922c7ea918beec15947b6a0737550054a73b026a32c39a0ac7418200051af25be51bb9ac169b52f99bd4 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 33f567b50559eb266d3b2f782fa5384d |
| SHA1 | 84432abe935ec93230402dd8b7844917e1694967 |
| SHA256 | 07d0428b813a62fdb391742382358a7c7d1fd38c204f68e11154d85b72948bdd |
| SHA512 | 54bded4545ace11af6bfbf58f8a44865226ca525ffee1ecaca90ed794a661c5e32cea0781b4b28823aa7ea66134a8b903dbcc871d3a21618bad647fe440e922b |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 5b5e7d48c164a0d4699edc90084d67fd |
| SHA1 | 7a990a56529d6811be7786f0c2872759b6ccf292 |
| SHA256 | 8e35c408b58807fd1ed4fce0f36d8f64f27ed8de5ca37f57d371e80b8d3dec2e |
| SHA512 | a160012a1b3586f921bef44c7dfd5909b8a83854dd3250a73e6457024ae85ab5818ce5665435f642da6f0d6d384649fa87bfd442b8975e8f0dfbd99709b2b58e |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x64-20240611.1-en
Max time kernel
170s
Max time network
152s
Command Line
Signatures
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Queries the unique device ID (IMEI, MEID, IMSI)
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.tencent.qlauncher.theme763
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 172.217.16.232:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.200.10:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 142.250.200.46:443 | tcp | |
| US | 1.1.1.1:53 | monitor.uu.qq.com | udp |
| HK | 43.135.106.42:80 | monitor.uu.qq.com | tcp |
| HK | 43.135.106.42:80 | monitor.uu.qq.com | tcp |
| US | 1.1.1.1:53 | strategy.beacon.qq.com | udp |
| GB | 172.217.169.68:443 | tcp | |
| GB | 172.217.169.68:443 | tcp | |
| GB | 216.58.212.238:443 | tcp | |
| GB | 142.250.200.2:443 | tcp |
Files
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | 35eb12dd1d32fd5d59efbdd4100132ca |
| SHA1 | a9c89e71008db51fe34cbc8054e8dfbcf7ff0b15 |
| SHA256 | c8001b5c8271e6a93cde377466a333737e2153e683e9c9d90d8de81c731991f2 |
| SHA512 | 6b9f7a86bf02c3aac6aa2712a288fae759a798ac307d10d0f02db4ba11e484b4de81dc57ff58b88d52823549b0b77c52f5aad5a90c3826b4e24de0be5adf4d0f |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db
| MD5 | 8e3ef6d833424a2e3164215d190f4c01 |
| SHA1 | 9fc5b9219e577aa4dec58e1b82423816c7fb5f0b |
| SHA256 | 0c5e1cf552421c30b282d6c587ebc7f8143d498629485ae2fe5d6e1686862f49 |
| SHA512 | 2f992ea450410e0a0b54e31e28f2b037a3f97c204c3677c593a09a140e896c30540760d018edfc2d9849c19b5da47f627bd1fdecac9f7009792f059c0e9b54b5 |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | 66db46e36d1c507a18c7e4e728122520 |
| SHA1 | 9166792752b613a729642fb9516207dcc73d82f1 |
| SHA256 | 20572c1c16366f323d3caa6ef2d96e420a76f5e057ec37e4d64aaec3b830be4f |
| SHA512 | 3c50b5d7803ea9ccd1ea9efca784314850ca512e783792753796c87e6d866ea1db30988b1f78c15466e4f630a15d0f1df145829e6d2ca407445d5a532c33f16c |
/data/data/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | ac4c2b7e31885ee7e9000aa878db99e7 |
| SHA1 | d5a601af7ea6a3b22d564ca6a53b431475e70950 |
| SHA256 | 55c63c4e335249fec48a034e863a4ed0aa2d94b84be3806a2215db3734691886 |
| SHA512 | 06c252072980938598e044319a74fb1ca7846de03562a468a701ad3da2928239269938c62f0cbd44953d69cb8238fd3492c2f61bfc5f5ba6bd2cd5448374d1d1 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | f1f6253484ecb05d6199ad698e1665e0 |
| SHA1 | e4737f2e88b51f7ef2204f83d381a23208045e74 |
| SHA256 | 455edd24309134038e3746a600c8bfe07a1684d9cdd2d59c1c362dc1a1c5c7d8 |
| SHA512 | 48453981f13ac0defa9f0a8614623cbbbc63e68cdb692660e4d705c9b37c5e87e7b4a4a3eb5b36f972dee2d8389ab13c5447785076fce017f2ffdcc6de427458 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | e1ab7cbed3fb53c12f309deb97988d2e |
| SHA1 | bf26f7301643ca198721d10017ea63de94718084 |
| SHA256 | e4d36cbc27ce2fe1e354ac6a145cdecb096b55e6cc5cb6d1f00eca2a2cf05e0f |
| SHA512 | 9b162cad2eaa83ad93952b8a8ebedab0a32f014b6c74c357965f073c2cddad90582de7ce012d6fa012aba60bb2abe9f39fc159fce358a68a6422a4557e72acc2 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | c6a0a0ec0f6a92a6f41741200b42cf7d |
| SHA1 | ada22bb6f0df8a0f20462781387d84b42254ed08 |
| SHA256 | 0506b82b1703669cd96d72094ec883c29d9b6c6b422c6addda8203e2b68395c7 |
| SHA512 | 51c6f3ff66bc31fc8f55c73473790bee959912ce6da6095f7e27618016419513dcd9e777680fb6dfeec6982eb1e79aa58d02fb7d1c4f68a1427fe2601d377c8c |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | dae82fc81811ad831863a053346dc5c4 |
| SHA1 | 6f6ed0622e2b0fca1de80c174901aab01409010a |
| SHA256 | ecbdf9980119dea8ad2463a518ca4ab7bee38a835a2498491f95a0456dc159be |
| SHA512 | f4ee98af001385b674116ce88d45f454788bacd006f81766adecfb6cfd343abc49d8b24368b539a61dda0df01571949121af769ccafbe118fdefbd35e6219bbf |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | d71fe29a554d7e29774c9dd18f1c5a79 |
| SHA1 | 21bd9c5e17fb27a8005ad207d301732aef3c702f |
| SHA256 | 2cb6c60ebe585f99639d6967491bf3b0a082fe97aa59714dfc298c2acbae2e5e |
| SHA512 | 69643339fae0bd038649deea9faad8b5bd1a2eface7c869cc02b870931a4c3178cbd4be71afeb6b58d55cbcaf8881e9466af6008566b0f66fac014958511ff4d |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 29ea1c58a2a8095138cf33f1bd9e1c7f |
| SHA1 | b4263afb898a77e90a844bd6e97ad3be66360713 |
| SHA256 | 5c72a24aee4e62803ee4351d736575fef4ce34a3c608adbe0179a0934df0b82d |
| SHA512 | 4c788666cdeaaeb5c60a5d89d292991b655a5eecd3c5ece97b73017c22439599c29acb3aa1c9e8d45dd94ef901cf362a149dba01e631a6581f2785606486f593 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 7545bd371b69ca071ac34b6bf8308171 |
| SHA1 | 4f14e62b11b2ea8e6c31f20b341024584f326e11 |
| SHA256 | 629f9c929bd2d4ca8e9be8346d236d2e385b177d20a17c3c4d175c990e7c9177 |
| SHA512 | c909ffc410b3b94b8506a41de6262c69775af4ce1156bdadeb19c82fb68f97f832a4207b328f4bfca262c17b892c6fc92ec539fa4386d49b59a7041ebf7082a9 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | b0f9678d28fb87138e3fb26292c2c32f |
| SHA1 | 95bad09b08a9efa6a9f4b2ea08b4e0a9f78641e0 |
| SHA256 | 813e0f8da9bd5a8c263213e4c945724750735baf5afe203413739aac2d04bd4d |
| SHA512 | 5152abeb9a0b169ef8e4ffb7262540f169d85fe6dd39264b2a79a531a561438550dd15c6b46decb689a1a8685528d72e66ae9449b3f723dfcd15cd590e823765 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 4c66ca670fabdbb17f39591feea0671d |
| SHA1 | bc427de6c8e6f17dfa363b40b3f5b53db67fa16f |
| SHA256 | 2c64e536ea033fc385adc8d6fd835b2776b51cf51292a2aadecd510d4e660a9e |
| SHA512 | 4b236e88075d678c00f7bf1a219ff3b32cde6dcb672f41eabbb6e3ee83228644610546eed49601f7172eb18fa62e3dd34c18a07e96acbb9100622a244deb7ffe |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 39335c6bd276da54305fd6c8e724cbf9 |
| SHA1 | e5ef6c6ddff57c1c56c06c6fd360825deccd7424 |
| SHA256 | 596c31bb94e2fb6f3924e98a965ee33077c45e859a898d9e00531716c02de22c |
| SHA512 | 0df40b518637fca0578e38d3da63aa7e09771b6fef1c368beee9fd4f0f19e461570776400bbdd026841b3c24ffd5fe29b8f8a86b0a299c55d681ecf5b940be3d |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 9583c56573767a36b5e55d95f30bb500 |
| SHA1 | d41b0a43ef00673ee1b0571ea8652b464cbd9126 |
| SHA256 | a546b856a1da91f7a6e03950c680cf399a4955062a5b06cf31ee94b858934da2 |
| SHA512 | 39fe568184ff42f734d3ced49ac727d2cacbfec924c56d3549478fa145af86459d7cce1fa461a6b3a8e9b36362bc8c3858af84631c39f8806eb764250d9460e7 |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db
| MD5 | f53660dcbcf297cf441d79d6da1e4f08 |
| SHA1 | f0b432eb2b5daba003b4b7be6c5f19cb4294c0a3 |
| SHA256 | 47c15d6de58bfe4aba17bf418c2ab94012fc6de63e083376a6bd73d78cc1cc6f |
| SHA512 | a51b880d490ed93caef520d34bac183d4490346cf1f983b00e9763a23cee13b1d7951cf60e0bb8f7e25c937aefa69be528860ce5c21a6702179c64ca3e73a3ef |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 0fb227544d356e7e473d91cf4936128e |
| SHA1 | 7059b25b797f0747e728588e5deae05d81564cb5 |
| SHA256 | 198e753e16ad0f0143b75f8cc568ee48d62444336c42a7ca3e8e70295ad2a1db |
| SHA512 | fbdef890b7dfeb822623d7ef796c78155b69e166d95feec118926881b8a3c7abaa8967f0e25e4f5f8a613f8e3132b68e2b28df1bfc4169428422d8be43a2a6bd |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | f0edfba29f8c34fa09a1ad3cc90b0085 |
| SHA1 | 80f5c4a260f9aa8382b2cf46f25351dc02a18416 |
| SHA256 | c70dfb0ad418a97ad4ea4ebc19b9af02a4661f83b4525ac74c0678e361d5048d |
| SHA512 | 2a5ef632e46872bab71949f50f021e48cab8f3c3fd844fcb27e44cfa5804d3c9bcab65615afdacc9bd6e8d39a6fb49315fcd37d6310c201810226b1413f8dd1f |
/data/data/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | de07f1048cdd2d76e8901665233c695d |
| SHA1 | 1ea406ca519950519f6b0f708d3c040feb0b4dec |
| SHA256 | 303fed9d0c02e6f93b147ebbd069d84fe5a1342f1dffe53157818356b3fd9e8f |
| SHA512 | 296718bc8b7c94beb751cd00be47529a487a0243cd8beadbaaa79e922dceb86e6b5619372464371e23f38a3de3964ae8fcd36b5f1ee06a76f0ec910c26c3bf86 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | ff78a21df8640423d06929de05f888cc |
| SHA1 | a522ea251ea1ae9bcee6e056ceb130334afd2f18 |
| SHA256 | 8b59153f5502603f31bbfe1fd7a657e134794517e07a31235d28c79d45bf2af8 |
| SHA512 | 5dc7523b9b1e7c0920fa46942d5e8847c2754f419fe18228ac5922d813bd9b4bba90aecc5d2af5263a33a3145105f58bea4a2f725eb82faae84daab3bdf66b92 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 496896034378dd3b5f7564d7abd40684 |
| SHA1 | efd126316807295a536a4de8ed378fe391f98381 |
| SHA256 | 54ba3e70e23430558b0a92eb3c8650e3f723873dd7d5857a7c1b469440e915d8 |
| SHA512 | 6eec9fa7f8f7faccd6ee621f938fa63c50c43d4bfddaf5429927262cb846650d2c9b86018309e79389a5ad638bbb27284c0724e6657123440475d6d7de0c882d |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | ff61750dc27c24b12aecb7be305a9c98 |
| SHA1 | 48163b5fd8e6e78f262504aa578fe88172e1b998 |
| SHA256 | 4e2963ff949f0f37fbd0d56040abe5c27bc91112bf0ed37ec27ee4aa53f5585c |
| SHA512 | 6998f04ce00d0062c3bd53ae08179d656cb7f9aabadcc46bb74ee873aad196c5276d9f6e3bdcc33dc7d5d0163d81a95472644673980a0455009d7a5b30367ac8 |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | f06490ba3b14f90d82b520bf73601c54 |
| SHA1 | 8aeba676b38ea2d6ac609c075c59f518fd162b8a |
| SHA256 | 8cc1c2c481221fcdff0c9f0d33c71ac097255903ef43e24bd521c86abc1a7504 |
| SHA512 | 45b62af9f99dc5bdb25e2fb0b42d7c6245cd80ade1084f85b755ef353c69ba137a16ed049db9a372577a6093237108845c4d5a2c1c5cffd4efdf5bc271df7ba6 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 3cbcc1f01dab5607f8b54f092782c7bc |
| SHA1 | 92a5bc68afb4a6ccd499101af2b75311d6796eab |
| SHA256 | 72912ca296627b0f9f0b5aa9255a7da32bc593370bd957baac79c6d45f17dac4 |
| SHA512 | 890987afae0fced5f436e0628596d38fdfacaf341553a796582066ec31be7f8d13dfc1fce359f297ffbf504d8a46141750fc53431a00d880fe53fb479fdc285c |
/data/data/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | d020d312b7979a2b0f207b84f6c02321 |
| SHA1 | 561035769446f942f8a4c88bdbd4122b45d673b4 |
| SHA256 | efc5bd78094d919b905b83091e17da6426958c524d3f4474f4a7ab34fbc4615c |
| SHA512 | 9b9f6fdf72d2e3300732fbe0632a48741c8434f924fa6434dbd96361bcd3b4738175df11373169fdeef21c84414c8a116c2da9068604faa09c7dd2490d80f7b0 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 2128dab30253debdb3402b8946b312c7 |
| SHA1 | 9214fd5be1dcffdc69f94611c797d593ddfe8790 |
| SHA256 | 28a24629e18f4c714ea9148e512ca73b88332e8cc24c8b67f77a79c967ac341a |
| SHA512 | c40fc343a2e820ba8f8beafd878857502e19c22f2408896c17eed7f0525766d3dde6dc094a38a6a58c88ae022f20a0572bbc637cdc1a4f932008053ff6aa282c |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | a38768269f2047360481c72d77e0040c |
| SHA1 | d01a6803450ca840f0e3906ab43259ebe4605a90 |
| SHA256 | 671e83de051039a898b0361ed3f74d626e9a4ae037284f8d5f508e7f08c09727 |
| SHA512 | 1755c279458c29c2a0e2f1aefac5eb3ca4ac1f8dc0b5c002633c0e5017a8c5f4095e6bda25d8e7e1ae5bbc1c616edcf0cd73f286ab796286f04d13e0d17bacea |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | f1eb565cb5396acf822842d8d3c914ea |
| SHA1 | c4a2f60ec98d6eefd99dcc8c3b16238c7c2a9556 |
| SHA256 | 5eb08a057df217cad2a3acfeaceab1eda8feb618f1440b13a302d53f6b122c44 |
| SHA512 | 1926ff2e2fdb237da06feaff9190ddb0f5b895be8c4cd4f5ad393f7d404e6b0f00f0a1faf4c6b86febacf3a6644918cb26e961ffb35bd220d29d7c6a82c34bed |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | ae4b71fbc72ed430cfdcf10d76fc4289 |
| SHA1 | 79d850661b285016c6f0ddd754a1689c6798300d |
| SHA256 | d77e3f487b4e2602c5a307a4c5a4332507009cf80687f070e7717c0a3cbe0ddf |
| SHA512 | 7464deea968bea6da9de4ad58e6a73c1b3117ed466f83365bb3b3b76fb4897623d22bc53f093014b43fe026941395dfcb3e8391ff9ad080860177da5b67b4338 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | e8f504ccc233cbdd955b4d52b4c63a2e |
| SHA1 | ec5888fcda9229c6e58c33cb7ee93f8a855d6c39 |
| SHA256 | 87a91026ef0322d143cdec6f4f1887c548ee2dae296c24e2683201ebee0da890 |
| SHA512 | cd115a5f60e7834e62c0ab78f3be82c38193d8f5fc1a1879542424f5e676714b71f558b3b5c32623c0084cf265eef871a956b258442047e4d01ca66c38c0048f |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 8f99646a8165dbb312752544aaace237 |
| SHA1 | 384a95124df1b7f1f8cc92d6a884fa6e91ce5f76 |
| SHA256 | da42f53d6304293cf8e5789012c6692e0349247eef2d195d19485bdd5293a07b |
| SHA512 | eb63fffce6ea907849dff4ee0b20a1d8644c3d1049d5158b8cd9147e6b96a4ea7630bb5f8adfbf1ad96e9c6b78a3d4c04fb73edaf03ec8724f30d52552f6f922 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | f6109272342c8c3270e5ce1c3d4b68a7 |
| SHA1 | 222c6ad5d10ecafaa4d4824845ba31aba73606d7 |
| SHA256 | f61a3f0cd520dcdfb7b2e4cb17333d286a36d2536fd90ac60172558d892919c9 |
| SHA512 | 0fe42cdb941e4379719d0a07d4651618ee21d7e525fb639ce5e2035887a6bee60e152f112d4bd0d0407554c84497dd3a1790b9763b8e90c83bcf457850266708 |
/data/data/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 22d1f1281fa3fdbaaa820ff3ddc98cfd |
| SHA1 | b20cccef2f12ba445d5fc3a90f34ddb8674535e9 |
| SHA256 | bca6f0132caef2e51ff14ff14a0e7db2c6e6f9d5da1dcd0d8f20d98dd84d59a2 |
| SHA512 | 47968e3c33c5864b2af60c3e9f369822055697e94b7f9c9152589de4bc39a69a0c3f39dcb3f85dc229eb4d731ec9d29418783f991c14045bc54e915011e2961b |
Analysis: behavioral4
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x64-arm64-20240611.1-en
Max time kernel
170s
Max time network
133s
Command Line
Signatures
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.tencent.qlauncher.theme763
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 172.217.16.234:443 | tcp | |
| GB | 172.217.16.234:443 | tcp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.180.8:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | monitor.uu.qq.com | udp |
| HK | 43.135.106.212:80 | monitor.uu.qq.com | tcp |
| US | 1.1.1.1:53 | w.html5.qq.com | udp |
| CN | 157.255.244.95:8080 | w.html5.qq.com | tcp |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.179.238:443 | android.apis.google.com | tcp |
| HK | 43.135.106.212:80 | monitor.uu.qq.com | tcp |
| US | 1.1.1.1:53 | strategy.beacon.qq.com | udp |
| N/A | 0.0.0.1:80 | strategy.beacon.qq.com | tcp |
| CN | 157.255.244.95:8080 | w.html5.qq.com | tcp |
| GB | 216.58.201.100:443 | tcp | |
| GB | 216.58.201.100:443 | tcp | |
| N/A | 0.0.0.1:80 | strategy.beacon.qq.com | tcp |
| N/A | 0.0.0.1:80 | strategy.beacon.qq.com | tcp |
| CN | 157.255.244.15:8080 | w.html5.qq.com | tcp |
| CN | 157.255.244.15:8080 | w.html5.qq.com | tcp |
Files
/data/user/0/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | fa35bc5c6912c3781747ac646df79d58 |
| SHA1 | f07e152eaceabd6049bba529d9b7852af2da2dfe |
| SHA256 | ba72afacf6c114b584c4b0de6da46a02a8438eb0d44d3aa6e4b57c79698f77e3 |
| SHA512 | c7fafeb9beb2920b0374cb5d3338756c11d355bc8831c11c17068af192ee435d66f4e63986acf2e2c5c15b1af1a6eae0807a05a1192256129c3ca4d6d31ed2eb |
/data/user/0/com.tencent.qlauncher.theme763/databases/download_database1.db
| MD5 | 87aae0eab8ac310a0450dab688c831cf |
| SHA1 | d92132003943db4dc83f18306f897c64e01767eb |
| SHA256 | ab98ffc2c1497cfc899e3d158f8668ea4d23aa1a148afc86a35d1a92c039798f |
| SHA512 | b167bc4b5f9f9de4f6beeefef2ae6531ab9119d7ce19e4c87c1a447199ff6bd19410f8776f626f75c061101ec449a60825b7348bee954834761f79f6ecf26456 |
/data/user/0/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | 2dcf28c5d18091ed2bf53bdff124fa7a |
| SHA1 | a7bc7e28326252da01098c985a94d7cd887845f4 |
| SHA256 | 34aed6ef3b4cd8d7c510205baa1a5be0df88be6f7c51b8e58100a12fe8a8a881 |
| SHA512 | caf217a39fba17d9a4cac724474c324a17ff8526c70c4e10cad65a4369fb373f7848ba515b5671fddd03b38593e9089ab6a66c7869f542547f9a161ed006f527 |
/data/user/0/com.tencent.qlauncher.theme763/databases/download_database1.db-journal
| MD5 | 3015fcdc3277b86060cecd5d75128522 |
| SHA1 | be6fbe71a56aac0d9ea7f5cc14e1b41849743e07 |
| SHA256 | 69a8345b2e66b0ad8ba46ba5486feaa49f9bf51c1a371d186891851f7ba133ff |
| SHA512 | 57fe068ca3c6f06b4da21a42ff1c86b7f22a203a4b863d8348a986591281237b43fd513f7385abe0ceb81ff8f54d9095cde645d741724cbc1b52ad71932fc3b1 |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 522743f78f96d7744183d105e93fc672 |
| SHA1 | 957f90cc0574343023818728b8d60c54fed47fb0 |
| SHA256 | 1d8339f3932fa5a5ec48f9f78d308a428868fb465f4f8ae428ca7328ac35e443 |
| SHA512 | 581e7734d55df51efbe0b092a2365d5a816f2271416e92fa9da2904fc846c9bac3d019bc9380c578eb10bcc84b7446f5b39bc9fa102d0fd675f4858fd9f2734a |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 7795528d4b203aa3720af2babd7c4450 |
| SHA1 | 0451bf944d0c99d6360482ebf4374d6a473f394e |
| SHA256 | 381d323605d5700510a0cc2e3f0c6bd1349cd211fb8a15ecbdc9f965f2ff13c1 |
| SHA512 | 06cdb9c2e822d4d956238351aec2886688df47876c4ac5518ff12659d519a3b7b9efdebee94fbbbaa11d52096525d4d9bf1661c7bb486cacc61904ef9cb76763 |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 9a5a67b56dbbfbe2e62c99635224e640 |
| SHA1 | e24939c6bcac5d397fce10ea15898d0c071029ff |
| SHA256 | e6b776413d2e9a6823bdb47621f96d0de0821cc6892ab168b994d237bfb39854 |
| SHA512 | 3c5b970f0d1016f9fbe17972db5e03a2de70f38e196eed31edbf61e1c4bca1f66a7d3ab281bb4632c7fb38900664a1de6845d3c3a5ca4ebcef0c1aa22251e033 |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 8206e97b05ab75fc178eb36d30bb73e1 |
| SHA1 | 9aa88874315d64f5201b94653ca2e785a34f1dd7 |
| SHA256 | f54583e58449a524aeaebb749c554ef958e68d687221820555fd1519e98d8bba |
| SHA512 | 04149e656691e13ab8bbc2bfe0a89a96f0e26c57edec451db46477f332e0c42e4d3b0e3cfb09fe0cd2e2a9f60a19f59d025d426bb44c325e4b1c5523d00e707b |
/data/user/0/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | f26fa4bbe0d8b2f1aa6d72c14695b550 |
| SHA1 | 1fa0be6b9d30e1e60eb96df1aa6fbedd70d64b0a |
| SHA256 | a8167a43f7cb1a29ffd6d37d3d5df97252ffad145c1aeb13739a65deb219002e |
| SHA512 | 7033b5131774d08f02bbf550179803e1c184528d7593a49bbc0680c65bc107ca067744b5c0dcf47edaaff8fa8bc50e0ec12b4da01b52a02e8d6ee31aa0e6c76c |
/data/user/0/com.tencent.qlauncher.theme763/databases/theme.db
| MD5 | 6bb895d450bf63e970af2beeebdbc30b |
| SHA1 | 30395163756c08218c4a33321995d02f3fe8fc1b |
| SHA256 | 9ea42ac2cb3b24f47cac127f0a1e534f28e45a88aeac44a51f08654672c2cd89 |
| SHA512 | 9979201703c79ff3e43c3fa52a8d4f1b126d2cfb8ea744cf4e0a2f90b19c5de14ebf7f7ad1b09ca2ee061f2ea726eb2472eb0e0f70bb3e108779ea67405554f0 |
/data/user/0/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 0506eecdbb3a04aa5e3e0eaa722c006a |
| SHA1 | 592d7e4b253c4f73a508f98fe67d8cfa899884ad |
| SHA256 | 9e093194eb141a56766fb1cf9ce2d4149968b260781e43b10f3c0cd5c7077a1b |
| SHA512 | 70aa33df71507a2fb5bdde9d1be1a556d84f26251ff81acb66ced5870cfc91dc0203ca20fa5eb06cf6249f17ff50d3807ce88886d08528c92962b856c1449a0c |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | eadd674822ff7af1584b435cf21d7d00 |
| SHA1 | ec9f542c303397ce21cffeb8ded6c4bd3a839374 |
| SHA256 | a061390ce7babf0d7129da4d6d96214860e399a5941df9e8a779500d99e81485 |
| SHA512 | 09b5de3960529a54345940a7126faa6ee65edd49bc60f7255c2c7fa615685690d0c75d7b8fadcb99650fa6d4b252e06c17c167ffb2e9ec869827e455f63d61ea |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 9903fb14b18f7303688c8ddfe83da331 |
| SHA1 | c575602fdadcd09bdfa94a45ce80c8c52e856be9 |
| SHA256 | a89707db5703fa8652b45d5ead42dff22c5fb00f24bd285175ec34e6e48ac72e |
| SHA512 | 99e10071b761ac97aade8ad776d2c76f2c8aa648a1d12890788f440dced9071ab1db88eb5ae75100809e0a5207c3e7691253a2a96525eb5168710b654a4bcfa1 |
/data/user/0/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 185f59a3322985d87141112aeac9ce43 |
| SHA1 | 250c41de5aa53914e11f90f2b017db63d21cb6d7 |
| SHA256 | c442bf94af2560cf59217ad3c548f6df8f2c8cad4f5f8792627f125a96108f9b |
| SHA512 | 69ca9d9b0957bfea747da3ff4561c949154ce9a52dc160ab9e02e409a22d31fd23efba3c564537089981321b7d1f60ff44dea08f6926903d97ea45f4a8d4e0f8 |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | 268487939b998c46e90e4cc0d4eb70de |
| SHA1 | d8b8207386110f2c99a0b44537fc748e6bdbe148 |
| SHA256 | defb1ce7d0e7c952b4b4b91eb90d79ca8b8f49b17ca0ebec6179a7a284b3d869 |
| SHA512 | 3ae6a7a85094defeaac212746330a4492b032e55ef5a1b5c3e0b6b133eec8e6a542b503246bb201d027db7999218074fb990544ddba6a10fbebb436ce297206d |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 67f54c8f6ef9c87c5771fd0d07e81005 |
| SHA1 | 081ac122bb91acb064030ba24f207c6c1e0fae66 |
| SHA256 | 2c19c84397c0de384eafa0b452590c4aac2b0784f6517147d57d597980e3b67d |
| SHA512 | 6f3a1fbfb0377332e891475006f78fa9f348730d5161de9c6bcf2cd0a29e48c1f1185e08b57301cbbb2c3f7d800bcc6c776b4bb1d79abc5a0f6527524d68c9bc |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db-journal
| MD5 | bc51474204c934741205aec72c4c42a2 |
| SHA1 | a5a02401e5effc46782d96be57f60e62ab348d9c |
| SHA256 | b5691d981265da3189dd5cf48c0727a5d1975bf540dd4c28e9bdd315a3ef0e0f |
| SHA512 | d5da631519916769ab36280d0724a19e3c73aa344c88d44c783974136a379ece2e8a98be891a6532e99a120a2fb57a4eda1d9845048f635b2f33288f12ebe823 |
/data/user/0/com.tencent.qlauncher.theme763/databases/theme.db-journal
| MD5 | 57d3f9801543d150141f25fd54433392 |
| SHA1 | a1d96f89a7ceece84c43d76775bd46fa4998a73d |
| SHA256 | edad73077b1ad7df06961967782b2cc65de05406bca93296c7bde6080c68dc5a |
| SHA512 | 5d702d5d0261101cf97226b246c2e526753cd7c7e44deeeddbecb2b80d6f89becf2adc954341329608e06f742d2f2fd45198c323593995c4904b0f6908c0d145 |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | c4025ff068f7703247bf71cad15f5a98 |
| SHA1 | bb58cc2317865a247be325faaff4df252f4e18ec |
| SHA256 | 69c9195aac4783c34e88c1b365b57ef3d3cbbb14be8dd917dbbefa80f411910d |
| SHA512 | dd654d30cb8b7aee054ca11bcc21fdc1f41ef3744c3c5ce5305bbd8775a97ba41ce3d822472fe3666b0e16e83f46535dae61c8bbb915717603470ad7de2ba110 |
/data/user/0/com.tencent.qlauncher.theme763/files/wupData/wup_pref.ini
| MD5 | d5f076d68e170cf3c7d25ac8d46b17fb |
| SHA1 | e1a2d68d79437ecf05541bcd8ab227ca17bc9a4b |
| SHA256 | c84c351418ba39f85a77cd2aa97f2e4936d7364f13888e79c815789a43bf83a4 |
| SHA512 | 9564f43c0a5cef3a9d75635de9b765d53dd6d5ad5268ceb5513f4abed32ee80254254fc4f864a152a6cdcd7603874e5804dafab048e4a69d1b4371466ec8ac47 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 60e64b22d3b8789c683c6c67a465adde |
| SHA1 | c3389c2f6dfaade5de5ce973b2b5c0c236a48241 |
| SHA256 | c554b221304ca1da6d88aa6be1afac984feccd006530c18c921608a354980324 |
| SHA512 | 4b138bd710e430085444b158d370d48740459cadf4a4452beab3e6e27db5c757e6e4f073ed1fe6b19f44510e639fb3b8f761e1526746b6dde0f021b89b464072 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 2cf00b121925ff54aff17f0846a0844e |
| SHA1 | 3654327a0e040962c9996e7261454d4b625124cc |
| SHA256 | 6f01d9e525e4cf81e2139ad3754915a95ba9c9b097bc13bd4b9459c1a97a14d5 |
| SHA512 | e3020820e759500af9c5a460d449411d7703438c0eff6790019362f619e5dd7c0a1f90a1925e1203725318bcbf43b75264147cb1fcf91f0cca699c81ea730f84 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 3edbe74693b426976d89e8c854fb40f2 |
| SHA1 | bc297510262653044003fdd3a502115a4bfe959b |
| SHA256 | 239db7b8d82b20873d4dd9c6a1bbd9d8df8ce70b9e35d8d3a599c05200e407de |
| SHA512 | af932ba51179bc75f05a1b3843c3e57f1a54a8e64aa6ab5a5e70ab4cd7cbf08d239c9aac8a37846c9b952b8e330fecc21418ca193819dbf38d4c409113813ce7 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | e96d76b2f1dfd6c8f2dc0975bdef0219 |
| SHA1 | e96d0b235d5e881298f05aa739ba567876f25658 |
| SHA256 | 63abdd5062946ddd8b8685b1c49139dd92a24892cf672178caee40415313ff82 |
| SHA512 | ff4474ffd44d9147811a9cac776c6036e5bc4b94a694ca644911bd9cd9cbf19ae94f212b8715ec4ccb79735d9389bd05b46c9e888ac629960f5b2b8719e2988f |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 3aae0445691393be11d8b158737e78a1 |
| SHA1 | dc863769849b1a9f35aeed28ab5b39fc0c2e8c06 |
| SHA256 | fb574a318162edabf399bf066c71a433ba9487634b1c6f387541718b65d07255 |
| SHA512 | cd2ed22370f72b3758b0fe9ab1b2573a8691ad05b8d13c700ad58cd501b11df8cf2fe1fa4205f1cc3c9b4a858de7a42c7c16e86649cd52abc7deb6fea982360e |
/data/user/0/com.tencent.qlauncher.theme763/databases/eup_db
| MD5 | 58ab6070ecdb6423f87a64117f9863f0 |
| SHA1 | d88e3702ab0202d577720412d88d50b8c778092c |
| SHA256 | c906dd0e69b3a1a3aeefe979f532029cdcaec123033cf0b15f6f4a1520eb05ce |
| SHA512 | e561e373ec04b659c4bcbbe1f08b6041b5987c620bff7b7c9bc996d3ca4a6131c48af60c79673767ca733037db9f29f2197c524a4ca984cf655edef7d46b9f63 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | b0a0233006cbb3ea467b2085bf5b4460 |
| SHA1 | e9d539448983aeaa39cc69101540be1b736bef60 |
| SHA256 | 1224ce3273bcf453fd7b905aedfd73c9819c86a0c9cb427be5e19ddd6265b41a |
| SHA512 | e364c6982dfb2c8f430c00dec82a3b3742df8b12b5b76e4ff513a08160c106694a151c6b59a1e0aa73f697f38753e13d3466a0b74e5c516d55d373303099b3e0 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 7ddae271eaaa0ef96b466a2bdca39667 |
| SHA1 | 639c0cef96653264e07215fd21e30a64900046cd |
| SHA256 | 9c4ce27be6744918344d54e5df735e5c7fdc44e5ceb45db303979dcfe09e30ed |
| SHA512 | b1d15a0615420774978178b8bfcc663fc6497ba16c877ed591e43c6658d3df6ffe0dcb630ac7c168e30a75b9f812cecd4ca0a5d9c0d9ec4045928f70acb9d551 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 9b249373e1472c09be40f500c0399374 |
| SHA1 | 42aa104a36e9490a26ed918fdee2603fb0744c82 |
| SHA256 | 7f3f3b8ae878c2d2296eabddc793b5face7f0acd8bfdbc4dd799540adcca8695 |
| SHA512 | 1fa0293d8d71d06b541d2f4f3056ad10bdae7755f56422fad38bd0c8b7aed1bb1905bf0cd75f63ea1e012940447f34d32c598a0cd010a5db56d917969a23ab44 |
/data/user/0/com.tencent.qlauncher.theme763/files/wupData/wup_pref.ini
| MD5 | dc4fa19abc497a071bbd5b4549ce4428 |
| SHA1 | d4c9754c03e797c064b472c54955c7a2f81b54b1 |
| SHA256 | 84d3ce22886318342b52756e31815226026440b62ee8c4dc2824e7845703444e |
| SHA512 | 3b617dc4756ae3bebaa21991267f56f678cb2862f194a905363a7425906f4bf1432ace3d06c5d18ac51641656228068e76636ecd2fd79028e7f0d92e5b228fdd |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db-journal
| MD5 | 14ce942301804beb3d638abaf9e1e0c4 |
| SHA1 | 3bfb3ba9a165cff6c88db03012f2be182d958d14 |
| SHA256 | 7537046eced4b071433820f99356faa09aa3b2eb5265544751f0d7360bc4c8db |
| SHA512 | 46ccdb709278bbac0b05964062d80fe6f553ed3fb6cc6630f102ce81f7170e239f4e2f06154a0752e8a9e3cba3038f5f990196151d9ab9dfa7f9604f1b020e43 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 965bc7adc770f6de63fffb145d103a45 |
| SHA1 | 628da088d0b91fb74a03443f1918c4ca98dafd90 |
| SHA256 | 8efa50b142300acc03c9e364a4dadda6bab3bfa9f30b991606e2d695b3f59b3b |
| SHA512 | f409e551f548a4ce880e04d65913a184d911cf45afdc306e21521c7c111f1392495c3f489a77898280b84a87b1faa291c234516202ffa4cd0f4c5e10d8544e64 |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | bb8055604d3653443d6aaea775d964a8 |
| SHA1 | 258a07bdd017f14e97aa9db5e7cc4cce535ab885 |
| SHA256 | f20d2dae09b6f1965da55b43477309d5b62d12ace9d81f4826f080661bbdf54d |
| SHA512 | 29a2511a92ec333ae1776861d26c3b10904f53d8557d4ed6bb31cd5af1b5a281e1a8d94ce9a426dc07ebb8dd109900898bf4999438b42b6f89fe929f96740d4c |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | c61ce81fbde11f243f9b764951001f79 |
| SHA1 | 0b60ae96f028fa586defe0f3a59f4ecfcff60a8e |
| SHA256 | 1bee8c0f8030ec001ce3607f7545569df59db3ebcae2eb202ab363e598964699 |
| SHA512 | 76e891a7b2bc197deb0f7dad5eeb0e59f40e85f51866098d4db5f45d0414e8a608538439df7347300c146f794a61026408713223884db4e127832ea6fc8cadbf |
/data/user/0/com.tencent.qlauncher.theme763/databases/beacon_db
| MD5 | 9b6d197673d3b2b6b5af6df33f9e5ccc |
| SHA1 | 2bb9d61e81e81d60eff9215e489a415b88b188aa |
| SHA256 | 13e71e203e3125663ab903a1de6929a028b8c256f5b6b63c7be16e8cda84032d |
| SHA512 | e4b6c175f3216d338bf512c42954bf3bc07644791e50bbc8a2a429d22b451d2229adccf38133a4c10398bf24b5646a53ffeadc66465c94a73e33b8c62ef97780 |
Analysis: behavioral9
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x64-20240611.1-en
Max time network
147s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 172.217.16.228:443 | tcp | |
| GB | 172.217.16.228:443 | tcp | |
| GB | 172.217.169.42:443 | tcp | |
| GB | 142.250.179.238:443 | tcp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.179.232:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 142.250.187.194:443 | tcp |
Files
Analysis: behavioral10
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x64-arm64-20240611.1-en
Max time kernel
14s
Max time network
133s
Command Line
Signatures
Tries to add a device administrator.
| Description | Indicator | Process | Target |
| Intent action | android.app.action.ADD_DEVICE_ADMIN | N/A | N/A |
Processes
com.tencent.qlauncher.lite.onekeylock
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.187.206:443 | tcp | |
| GB | 142.250.187.206:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 216.58.201.104:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.179.228:443 | tcp | |
| GB | 142.250.179.228:443 | tcp |
Files
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x86-arm-20240611.1-en
Max time kernel
179s
Max time network
189s
Command Line
Signatures
Checks if the Android device is rooted.
| Description | Indicator | Process | Target |
| N/A | /system/app/Superuser.apk | N/A | N/A |
| N/A | /sbin/su | N/A | N/A |
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Reads the content of the call log.
| Description | Indicator | Process | Target |
| URI accessed for read | content://call_log/calls | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Changes the wallpaper (common with ransomware activity)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IWallpaperManager.setWallpaper | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Processes
com.tencent.qqlauncher
com.tencent.qqlauncher:tcm_service
getprop ro.qrom.build.brand
com.tencent.qqlauncher:plugin
com.tencent.qqlauncher:tcm_service
com.tencent.qqlauncher:plugin
com.tencent.qqlauncher:plugin
getprop ro.qrom.product.device
getprop ro.qrom.build.brand
getprop ro.qrom.build.version.snver
getprop ro.qrom.build.version.day
getprop ro.qrom.build.version.number
getprop ro.qrom.product.device
getprop ro.qrom.build.brand
getprop ro.qrom.build.version.snver
getprop ro.qrom.build.version.day
getprop ro.qrom.build.version.number
com.tencent.qqlauncher:plugin
com.tencent.qqlauncher:plugin
com.tencent.qqlauncher:qubelitestat
/system/bin/sh -c type su
Network
| Country | Destination | Domain | Proto |
| GB | 216.58.204.67:443 | tcp | |
| GB | 142.250.178.10:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | monitor.uu.qq.com | udp |
| HK | 43.135.106.212:80 | monitor.uu.qq.com | tcp |
| CN | 183.61.38.168:14000 | tcp | |
| CN | 112.90.140.213:14000 | tcp | |
| US | 1.1.1.1:53 | dispatcher.3g.qq.com | udp |
| CN | 180.163.210.30:14000 | dispatcher.3g.qq.com | tcp |
| US | 1.1.1.1:53 | cfg.imtt.qq.com | udp |
| HK | 43.135.106.184:80 | cfg.imtt.qq.com | tcp |
| GB | 216.58.212.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.179.238:443 | android.apis.google.com | tcp |
| HK | 43.135.106.184:80 | cfg.imtt.qq.com | tcp |
| US | 1.1.1.1:53 | tbstx.imtt.qq.com | udp |
| CN | 111.3.90.95:443 | tbstx.imtt.qq.com | tcp |
| CN | 117.135.171.182:14000 | tcp | |
| CN | 14.17.41.159:14000 | tcp | |
| CN | 180.163.210.30:14000 | dispatcher.3g.qq.com | tcp |
| CN | 122.189.171.103:443 | tbstx.imtt.qq.com | tcp |
| CN | 112.90.140.216:14000 | tcp | |
| CN | 140.206.160.242:14000 | tcp | |
| CN | 180.163.210.30:14000 | dispatcher.3g.qq.com | tcp |
| CN | 58.216.28.65:443 | tbstx.imtt.qq.com | tcp |
| CN | 122.189.171.73:443 | tbstx.imtt.qq.com | tcp |
| CN | 119.188.44.171:443 | tbstx.imtt.qq.com | tcp |
| CN | 119.167.147.66:443 | tbstx.imtt.qq.com | tcp |
| US | 1.1.1.1:53 | strategy.beacon.qq.com | udp |
| CN | 218.60.10.59:443 | tbstx.imtt.qq.com | tcp |
| US | 1.1.1.1:53 | eventlog.beacon.qq.com | udp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| CN | 60.217.249.22:443 | tbstx.imtt.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
| CN | 119.188.150.242:443 | tbstx.imtt.qq.com | tcp |
| HK | 129.226.103.123:80 | eventlog.beacon.qq.com | tcp |
Files
/data/data/com.tencent.qqlauncher/databases/launcher.db-journal
| MD5 | 74219ec4cc7c497cf6302ce794ca6d16 |
| SHA1 | 6c8ee87027644343dfbbe13cd0331fe74d0a0c7a |
| SHA256 | b58f2e9239260ade0f7db92b251d8a91a36a3e589ffa6a624f59374201a483c7 |
| SHA512 | b10736d28be299f291c690cfff94469616f62fb869681fb18272e7088fd8ced0860c80fe4fc007673735e8c99058597ba5fc10e234e97e0ae0ffe0ef7733063f |
/data/data/com.tencent.qqlauncher/databases/launcher.db
| MD5 | d064dcb3e9b68f45ddea1de625f87aee |
| SHA1 | c3b6f36e95b9e64d191002c1c19afdbe6e150fcd |
| SHA256 | 1d630cc1e6699ff49725d5d3c02135f630c0dd57896f7adb300b56960fe457ce |
| SHA512 | 4bcd148a4857e5add0e34ecbfd92f2a8aa8b38009ef913ae376f248ece923ea477ddac80c3960c5c7ab1ea76670a22adc38923cab480d0fef8bdfb0ca3dfa474 |
/data/data/com.tencent.qqlauncher/databases/launcher.db-shm
| MD5 | b46f5d05f6bc0db14477f84ecd9ceb26 |
| SHA1 | 5cc2f28b841fb59bbb0382e1b77bfca3a721385b |
| SHA256 | 6f2f8569e60a057b47ec6cee02db59594b4175f4ab6101b35fdd9c94304aff8b |
| SHA512 | 42ede692b5c26373e9efa057648f54a157c6cff89d0986d8859e7ffc6c2138465a5d729235cc9cccb9619e68258a69f6a80299afe61a5dca8b5b72c26dbc2fda |
/data/data/com.tencent.qqlauncher/databases/launcher.db-wal
| MD5 | db5724d5a7871e64cf3ceb2185f529f9 |
| SHA1 | b7c450f6a300d75bae1fdc9fbb9f194c09b63453 |
| SHA256 | cd40cc93fbbadda08d427d63255ce899f5186e6761af7531188528bc37444b86 |
| SHA512 | d03cb6a3092fa3b8441d38415d24759d6e4f52dca664fe9693a0adacd26411f802c9dc2067024111953a576b7fc817a27c90d01bae6189e25d7c1a0b837384e5 |
/data/data/com.tencent.qqlauncher/databases/eup_db-journal
| MD5 | f40b8c2a81bf4da0dd818ad8efb9dfc3 |
| SHA1 | ff1f67e045931ffc7773b9449beeeee6b960e64a |
| SHA256 | ff569e81d63f3b7af436b14cbee7964c11d42eb8e1f7fb711ac04ac543551b94 |
| SHA512 | da9464abef2ca94484114f5e9305a1036a4019e6d3c0693c920ecb2959acc9e5d641da919eb193340d585b59a8b402a685154a3a423e0d1e7ce37ea373a57417 |
/data/data/com.tencent.qqlauncher/databases/eup_db
| MD5 | 817b5e8d3ee4ec813f6bb8cc77e85705 |
| SHA1 | 6e945be15ca184c0cabaa0b27bb28f3929f438b2 |
| SHA256 | da4b6e9d83f56a92ec2aad7a82d9f88901456edbd333c9fcc41e3a0d34da0763 |
| SHA512 | 4acd4193321a741c595fa62e0d1172be6a8b393cce6df86d7014991b3603a074ec64965dcb03d64a0fba1fef757f2eceacc0e010a2ab341bdcda2f87bdb5639a |
/data/data/com.tencent.qqlauncher/databases/eup_db-shm
| MD5 | b43e639e2b82054834f87c719ecb4c7d |
| SHA1 | 15f8c653a605bff78bd3431b3802594e216ab0de |
| SHA256 | f48ce0798b2a09c4fcb4a3d790749b77e6d9ac0d6ee9ae60848eb4fccb8ad93d |
| SHA512 | 332d05bdf77fe4305d08a369c7c70730c04533d9c5d63463d4adc02c5170cf9362f5b76ea7c25d67942d88cdbd1f3eb68afdbfcf8a5190df79b9e417dc05cba3 |
/data/data/com.tencent.qqlauncher/databases/eup_db-wal
| MD5 | deff0a5f3175542b0cd062aae72112f3 |
| SHA1 | 41ad21e96dee63962b1b2a222aff4d3ff3232de7 |
| SHA256 | 056ddb79294a9710e892e06c0802247b1868e31646e013a3592f5738a82228b3 |
| SHA512 | 4ea11c69d7b41b18689c1e784ff451ae2f2cfebedf6fcfae8b1617781fb7b13cefec55098f0c3413e9b783e5e8eca523f83483de23a7a2eae5c1c764ef29d0b9 |
/data/data/com.tencent.qqlauncher/databases/download_database.db-shm
| MD5 | 8573b3fed423f7b7a404b5a3a178fee8 |
| SHA1 | 744180521111e1efd85102420fa850f1079ae8d8 |
| SHA256 | 49602efe6a200c0bb6b8f85925fbe3983a67bc5083a00a9a5a1370b725ee024e |
| SHA512 | 2db1893c7a4e93fe54981b8a82c0719eb427887f9596ddda83b586c296ed6f49e22d970f988fbb9ea7a41b899791fda8e7412b41d2107e88cf5d8bd2122db754 |
/data/data/com.tencent.qqlauncher/databases/download_database.db-wal
| MD5 | e0427eeba07e41741a6137c9b21b8439 |
| SHA1 | 91d0b3f1f2016303d879c57559ac6253395bccd8 |
| SHA256 | 9f48836082e893eb82d086ebf586e7eb34886736d6a279e7ebe8a5b9447c2093 |
| SHA512 | 47e8cfa1d4d6ee228c5483490e182af9e597fca0b8590d0636e824d061c5b9e872abe52bcfe7e5bfb5e04881bda13d9665f48cfc0556e04f428d6736dda8f5ed |
/data/data/com.tencent.qqlauncher/databases/settings.db-shm
| MD5 | 3d7a9077b54774529e7f0d974fd41b5c |
| SHA1 | 564acc6f6e97edf057c95f4c011aa7fb76dbdf03 |
| SHA256 | 9cf7bad3bca756f8773a3ccbf0655a1718fcae34654c69b9d12c453578f8a177 |
| SHA512 | b835dc310062433258ed1265de612cadd30d51714c1d07a410e2d4002bb20204ed600c857464a9cf2951d81028a2b050f0821e3f56d20c112f46137542e9e465 |
/data/data/com.tencent.qqlauncher/databases/settings.db-wal
| MD5 | ecff4d47c2e72fe3feef002327c53acd |
| SHA1 | a4208da1b8bca9ae4ca5678c91c9ae3f565d42da |
| SHA256 | 20f56c7df4d8c4932d4fca98c837dcc169838bd27855b725377b1fa67b4196cc |
| SHA512 | ffcd1db620ce2260c250a154d073f0971510a4141033d846e5b2589491db32f5d3e735acf5fbac10dda1a3fd09e4e1c5875699e3feb27b210347eea6bbaf2b2f |
/data/data/com.tencent.qqlauncher/databases/eup_db-wal
| MD5 | c948dc7dea94d6e63de5b3f954522e5d |
| SHA1 | 6770c1d1b79ee437b1d8ad9989f89ccf43695ded |
| SHA256 | 072b1d1e5ed952bfcc993abf979c2a07f7a01a9229fa41b27a400c1565c2cf67 |
| SHA512 | 3acb9eac64f490255f6ef732c21f6947fbaa1aed6c5aaee72712e490bdbef9ec8a3ca7c598091f67488c0304bbd1d7b0080cb476d215545c695725b0cee45dd8 |
/data/data/com.tencent.qqlauncher/databases/eup_db
| MD5 | aed8ee58ad3c08364866a96310e353e6 |
| SHA1 | afb1820b22f5fc884bdfd9b53ee811a18ddd7054 |
| SHA256 | 8b51223f9ad8e14a044610eec5a3e94d96aea3d08ee397b49ca44e32100e4457 |
| SHA512 | aa18d5fe7a00d87f7cba4283dfbf68084c8796f37a39f0d440efa42374ec1044b16f17eb307fb4ea890afa0a1c2cde8f0a08a968ad632b4f36397e41bf23d466 |
/data/data/com.tencent.qqlauncher/databases/theme.db-shm
| MD5 | 71564fdfc9d93e4419cc2881a93f3a9f |
| SHA1 | 729a3275213e99124fb20353febbda1a035fa075 |
| SHA256 | c794050b419f600b687202cb1031185c984b50158fda803c43cc6f65531b9bf8 |
| SHA512 | f1ca22bf448683f53104b3b31f2e74a3017d35654c5ae88b45ddc191b52c8ce34b632534617074e98357f04628cb560146a88acfd0c58e96459ef2af113a2b47 |
/data/data/com.tencent.qqlauncher/databases/theme.db-wal
| MD5 | 9e6c43cfa22df8eb65ffab205ce54222 |
| SHA1 | 349a37ac5c267b551729dc42423a008bb95cf530 |
| SHA256 | 313e34da26a90cd353968c6bbfad7c3f8233c0168efd61a651745ced1d7b5c65 |
| SHA512 | 45905c034bf49a36870f874c19c8c3e18e3b5c9b7ca3c367ed886ce7f08e3cfc3cb73e24e9ab0d6271041dd9853ddc89302ffe4dd00e938f22575ab954268ec2 |
/storage/emulated/0/Android/data/com.tencent.qqlauncher/files/tbslog/tbslog.txt
| MD5 | ed903416d6b847d6dce0a1d15041cdc7 |
| SHA1 | 720458b493dca4ececba8078932e113ca1d4fe11 |
| SHA256 | 8ac3c2cb6b1594f3666ab0aefa884e6da67a1613487c307f5fefeba703283ed1 |
| SHA512 | e05912245632184248304cf0fdbe0d730126cfa626bc108c62249853461ee32428074396a90d75ce17b6023eaaa41f17b4b0eb729f8f5cd5f0c481116f625655 |
/data/data/com.tencent.qqlauncher/databases/opt.db-journal
| MD5 | d4ccb0d6b959d6592c03fdd7821799ad |
| SHA1 | a8a9a13ce7239c3e615a29a1833077c903b7cbf4 |
| SHA256 | d656c185d84a056b22731a50c522eb3edcef30d0ed32883bf6e7014930c97ec5 |
| SHA512 | 0e001f6b149527d16b07201cbf920a265ed56c43125602227bf0187313234eaea8c2126a5e8bf9b40c29f747d4c5227da26b899e1e1c91dfd6dedf4920c2afd6 |
/data/data/com.tencent.qqlauncher/databases/opt.db
| MD5 | 28f11f074df7243b0e745b4b251569da |
| SHA1 | 6691a0d63a26f481e25443d885419e9934e52803 |
| SHA256 | d0a11f82c4c2c3f8fcf7ebaf8bd0403e7c4706595ccb03b2604d073e8373dd4a |
| SHA512 | eae3d0d23612fe70ccfef5f1a0bfac88227b0c857e6aeaa98eec71f59f130ce32da42d5229ccad8fab2b5970981a8b6de5f51c195cd05c60c30250568efa9d64 |
/data/data/com.tencent.qqlauncher/databases/opt.db-shm
| MD5 | ddad72204a1180a4737dde15bae538af |
| SHA1 | 76d31fedff80d1dcdd3fcda8d89cc7a6e08dcef1 |
| SHA256 | ca1367db64d57614984e7019a63e62ed4563c067c278bdd37fbf5c770de8da81 |
| SHA512 | 8c74700d648221cdc6f108d92ac6ec1984a02007e7a2601cbd44d11abb6c2402a802db18f11ead7e8c3c6dbf33304f48b91af5ec602b0c21a99d33198fdbc47e |
/data/data/com.tencent.qqlauncher/databases/opt.db-wal
| MD5 | b711308f5259f8e6f045556a994f6222 |
| SHA1 | a4253472587b81302cb6f042a334742c8f399bef |
| SHA256 | f86f83e443b478e90247dd33012c97d02aea8270a31cedecd66fc1a43e50a59f |
| SHA512 | 8e66e0d029fc2ec6ede5b200dcb6b114c498be54da61730b2bf4bc62f1f35e407b26338dc02955ab9a1b18f926cd78095634706c54984b3aed0a0ef905ffdf05 |
/storage/emulated/0/com.tencent.qqlauncher/theme_file/com.tencent.qlauncher.theme763
| MD5 | 772c92fcb8c3e2cea804b30d9fa62f46 |
| SHA1 | 7e4d1f0930ad1501291c48e46548f738f586af87 |
| SHA256 | e54d9a6e8283faa78c280c5402184e1a8a946f21c94addf7207ea28106acb357 |
| SHA512 | 449ce40f29ba1e762e9dca388ed069fd58824f38312801994a4ecef598a20b79a5d32aee3457b1adb2c508a42dcf63112a9b762974938ae24d4fc6cb71819739 |
/data/data/com.tencent.qqlauncher/databases/eup_db
| MD5 | 7d7fab2fcb8c6f63f3cc2849061c103e |
| SHA1 | 85438168e79a5adad1ad889a68e2df32af46f180 |
| SHA256 | 758397b6fc9c7282145ae054034f8dcd1721eca642eb37d669ebbe4d7d42c673 |
| SHA512 | e05b37aa16d411e614421b3798afa22b633aafd101e5a2781606d387b77c105ac358e06b203ea1142fd8f194105c430f3893fa2aa20fffd305d90594f841f381 |
/data/data/com.tencent.qqlauncher/databases/0M3005UJWJ1TRN28-access.db-journal
| MD5 | 1db520800cc3544f5bcd18826dffc558 |
| SHA1 | 8d7bec55813897115dba8e170e6ede4d729d28b0 |
| SHA256 | b107cdeb4ca20e0fb6e68f388f5a1021508d55b333f913b43b2affa8d4f619cf |
| SHA512 | ad4b8b7b85abfbec9cd332a24b09cc8d71d850b0746bca334b0a77e16c508fe5211a60f0290230b0fe58fb38e850d5467512ec5f1257682702e12bb0b4e96b05 |
/data/data/com.tencent.qqlauncher/databases/0M3005UJWJ1TRN28-access.db
| MD5 | f2b4b0190b9f384ca885f0c8c9b14700 |
| SHA1 | 934ff2646757b5b6e7f20f6a0aa76c7f995d9361 |
| SHA256 | 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514 |
| SHA512 | ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1 |
/data/data/com.tencent.qqlauncher/databases/0M3005UJWJ1TRN28-access.db-shm
| MD5 | bb7df04e1b0a2570657527a7e108ae23 |
| SHA1 | 5188431849b4613152fd7bdba6a3ff0a4fd6424b |
| SHA256 | c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479 |
| SHA512 | 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012 |
/data/data/com.tencent.qqlauncher/databases/0M3005UJWJ1TRN28-access.db-wal
| MD5 | 42dddd05368239cb1b795740fb7266be |
| SHA1 | 8bcbf9064c95f16c0644e84a8e8a3b7243a474f7 |
| SHA256 | e62af17e69901b2daa0d411697c64b133aaa8c5472b54e9452ff7e46fed8c8bb |
| SHA512 | 634d4fc2733ccb49cdfe9062adc7efd9892a09f14791c0231c9cdd3faef1d0e8fe7e016424938498be90c318de61678e5a4161522c20c613aa442cd0d408314b |
/data/data/com.tencent.qqlauncher/files/libs/libblur.so
| MD5 | 5dcc45589459853ef9f2f46c441e50be |
| SHA1 | 41da974bae2bf9fc6ac21a3c5c427419567c1767 |
| SHA256 | ef8f0b6cd686c2c4bbc18e71b14ae1b84c63eea75a9e424b0e6b43dd4d16af84 |
| SHA512 | 21cd568450f0124ad2dad023d8302aed49f1f90991f4a69b82d4609e13786341bedf446e2bce386a02c4fa88fbe00541e8c408eb3a3c6990e8fb5fc28a90df7c |
/data/data/com.tencent.qqlauncher/files/libs/libbspatch.so
| MD5 | 8018c2a4aad05de14709f5e03bb04ba4 |
| SHA1 | 82961bd084ccf0176bcc24a0aebebe7fc61d2cc4 |
| SHA256 | a55bb4c21f2cce83fc9defca8e70eeee90e0c9660ccf1364d1d58ca226eaaae7 |
| SHA512 | c5af6e0b6a3db926ffb77e82d93673e4c89e3d5f86ff29559834483c5a5411c97881ffa7d337249a5f4db693920d73762ee8a868b755de5de225ee572fe15b9d |
/data/data/com.tencent.qqlauncher/files/libs/liblbs.so
| MD5 | 0b35104d837fb0e9520f949c12e7f6f3 |
| SHA1 | 01a8fab5a80ddfc603abf5d42e3184675b619600 |
| SHA256 | 897dc0399ba8ce7ea23d2eb676dae2a712050347a5b74caef5693e3ff183dfb6 |
| SHA512 | 536db2178f453f8f76573668a96f7c879db26c52b3d34ed90f0f19d21367f293c277bc7acac096ecf8d342e93a79f98b27bec186d9e150581928628efa8d3f34 |
/data/data/com.tencent.qqlauncher/databases/launcher_function.db-journal
| MD5 | f7fada5f834f8bc225128f6110f3d655 |
| SHA1 | c8609e45c14719f461246e0dcfa631e58237d0e5 |
| SHA256 | 6deef89897812eb08c000d0ef7f663712341ae418aff66e94a53fffd851cf008 |
| SHA512 | 594176f7fdec5e5d423dd529ce9e95a4301f75c87afaf83743bcaa96a772ec9394e9a1f828b1187dbe0020dc4fe7b75798d2e04058d3177254c3ae205fd796ca |
/data/data/com.tencent.qqlauncher/databases/launcher_function.db-wal
| MD5 | a79d90a989365f609bdc723a2cfdf505 |
| SHA1 | 700f2bbf798bb027b74debea30e1c1ac5a8f7d59 |
| SHA256 | 5f06d5a9b0e1f6607f614c2e953094d132b28ce4db30d79d23ce9cfd08cd53da |
| SHA512 | 86a41be502600e467f0b3c63a3331667b7a108b693e7e2eac4bf02dc6a66e20ee67a46b17aa79261d929672413814398b795fca2043705ad2ef632b26d7a4074 |
/storage/emulated/0/Android/data/com.tencent.qqlauncher/files/wallpaper/proto/default_wallpaper_763
| MD5 | 47e58540774c456bb995f946d9485d99 |
| SHA1 | d4c58a77fa17661ca001fc7cf37c77bcc32f7323 |
| SHA256 | ab4aac0bff6f4eb772b26947b7133fff8ec3cb1b16daf972bdd0b407015ab05e |
| SHA512 | 04eb7614e30c54937c8c2367f6d8a5fe824ecd8bb9e34a291ecb22bab15113b842d6d3517c67020a0dd26ab28376b044333973d4c18e965c03e44d1c18552418 |
/data/data/com.tencent.qqlauncher/databases/hd_icon.db-journal
| MD5 | 89b25a13cd4ddcf830c4d02080f18d04 |
| SHA1 | cd9a263a06061238c235c267f04772e35a2db90a |
| SHA256 | 60c5fcd61999f9509fc8a5f34ea81eee213175694d181419956bbe5f35c096b4 |
| SHA512 | 8dbe3ac1a3b8c05ba745d674a0919d96ddc8b13cb820b3bd866d55a63eeb298dfbabef6c5044cf94e9320a02d3c33a74785866fc2103c7132103793587996f0e |
/data/system/users/0/wallpaper_orig
| MD5 | de9c5cd9c2c751187ef36fe265c24f07 |
| SHA1 | 3e7db58dcd84dcd0a0117bb489447f6edd56a497 |
| SHA256 | 7aa09187b3445e8a9ce346d18486ae5a70d879b7c73fa8512ff1328fca8de98c |
| SHA512 | bb7272150e5976ee985e8134fc78f1002e289f3ecc4fd0cd2ef0dff852329755d76a19aa1da2b9e1bdca66ae7f0b8a322b85b8b92657ef80c154145308c3c9a2 |
/data/data/com.tencent.qqlauncher/databases/hd_icon.db-wal
| MD5 | 21dcd79684dadf8de8c0c6dcfbbc927a |
| SHA1 | f24bd8dec9137beb251f2c42704c699e47335111 |
| SHA256 | 1a082298228e693757baa669af4f5f74cd3e7df63f29864221b614f64783af37 |
| SHA512 | 279d22ccfbf67bba618c2c6a80c9f8a5f740d338f47274e2aa8c481b7c617a7305b6590aa21c92151ee2b15ca7b500a569212a87a5146659b1ee1b3d24832d4d |
/data/data/com.tencent.qqlauncher/databases/launcher.db-wal
| MD5 | a75b97c775fa07f34d6f7fba423eb645 |
| SHA1 | 684a31f42e302fa799f003d2de282a4eb92cd210 |
| SHA256 | 2d4cdf5da53e9f8d5332874ee862bb1532d21f984a320575b44451baf88247d1 |
| SHA512 | cd2d11e886671940fd4c6dc88d2866b9d4e08171bf8e15e2b1a8217fbbc26eb07df4b35b89d0a1d463a1b4057fbf25cc765c114b90334e2ab7f2219939b38b8d |
Analysis: behavioral5
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:43
Platform
android-x86-arm-20240611.1-en
Max time network
5s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp |
Files
Analysis: behavioral6
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:43
Platform
android-x64-20240611.1-en
Max time network
4s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp |
Files
Analysis: behavioral7
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:43
Platform
android-x64-arm64-20240611.1-en
Max time network
9s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp |
Files
Analysis: behavioral8
Detonation Overview
Submitted
2024-06-16 23:43
Reported
2024-06-16 23:46
Platform
android-x86-arm-20240611.1-en
Max time kernel
13s
Max time network
149s
Command Line
Signatures
Tries to add a device administrator.
| Description | Indicator | Process | Target |
| Intent action | android.app.action.ADD_DEVICE_ADMIN | N/A | N/A |
Processes
com.tencent.qlauncher.lite.onekeylock
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 216.58.212.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.200.46:443 | android.apis.google.com | tcp |